So my situation is this: I bought a VPS server from Digital Ocean and set up two seperate domains.
I used the exact same steps for each domains and they are finally working great, so I’m pretty happy!
Now here comes my problem: When I tried to obtain an SSL certificate for each domain, I could only do it on one of them! The only difference in the domains is that I used a different domain registrar for them.
My two domains are:
vvebdevelopment.com (the SSL-certificate working here) // NameCheap domain registrar
I ran this command: sudo certbot --apache -d vvebfejlesztes.hu -d www.vvebfejlesztes.hu
It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator apache, Installer apache
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for vvebfejlesztes.hu
Waiting for verification…
Cleaning up challenges
Failed authorization procedure. vvebfejlesztes.hu (http-01): urn:ietf:params:acme:error:dns :: No valid IP addresses found for vvebfejlesztes.hu
IMPORTANT NOTES:
The following errors were reported by the server:
Domain: vvebfejlesztes.hu
Type: None
Detail: No valid IP addresses found for vvebfejlesztes.hu
My web server is (include version):
Apache/2.4.29
The operating system my web server runs on is (include version):
Ubuntu 18.04
My hosting provider, if applicable, is:
Digital Ocean
I can login to a root shell on my machine (yes or no, or I don’t know):
Yes.
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
No.
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):
0.31.0
...except the NS records at the bottom of that screen shot say that you're using Digital Ocean's DNS, not your registrar's. What does your DO DNS panel look like?
The www entry is correct. A second entry with an empty hostname is required, that defines your missing non-www A record.
Most other records are wrong. You have created records with vvebfejlesztes.hu.vvebfejlesztes.hu and www.vvebfejlesztes.hu.vvebfejlesztes.hu, because the menu adds your domain name.
NS records ARE mandatory. But like @JuergenAuer said, your registrar is set to use their own name server, not DO's nameservers. So you're adding records on DO's DNS, but your registrar isn't even looking at them.
Yes. That’s the point!
V.V. are the inital letters of my name and I enjoy Web development so I figured the amount of confusion between the ‘vv’ and ‘w’ would be worth it for me in the end.
Well, I (wrongly) assumed so, because it didn’t let me delete their NS, but I figured it out if I just modify it, then it’s all good, so I’ve already made the change to the DO one. I’m all set.
I didn’t know the NS records are not mandatory to make a DO VPS work.
